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SUMMARY 

PURPOSE: (TS//SI//NF) To obtain SID approval for Cryptanalysis and Exploitation Services (CES) 
cryptanalysts at the NSA/CSS Crypto logic Centers (CCs) in Texas, Gem*gia, and Hawaii, who are 
under direct DIRNSA authority, to access and process NSA SIGINT FISA and CT FBI 5IGINT 
FISA data that is stored in databases in CES at NSAW* This will set a precedent for access to NSA 
FISA material outside of N SAW. 

BACKGROUND: (TS//SI) As part of CBS's strategy for the Extended Enterprise buildout, 
cryptanalysis efforts at the cryptologic centers in Texas, Georgia, and Hawaii will serve as 
transparent extensions of the cryptanalysis mission performed by CES in the Office of Target 
Pursuit's exploitation branches (S31142, SSI 143, 331131, and S3 1133) at NSAW. Analysts at the 
cryptologic centers will become part of a virtual team with NSAW analysts. They will access data 
that is stored within the CES firewall and will use cryptanalytic procedures and tools, also within 
the CES firewall : by way of a VPN capability that ensures that security is not compromised and 
that the data and tools accessed cannot get out to the local network. The priorities of cryptanalytic 
missions will continue to be set in conjunction with mission elements at NSAW and the Cryptologic 
Centers as appropriate, 
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(TS//SI) Cryptanalysts at the cryptologic centers will access data that is stored in the following 
databases at NSAW: 

FOURSCORE - fax and DNI data, some of which is NS A or FBI FISA-derived 
ZAP - text, some of which is NSA or FBI FISA-derived 
CAPRICORN - voice, some of which is NSA or FBI FISA-derived 

SOAPOPERA - voice, end product, SRI information, some of which is NSA or FBI FISA-derived 

(TS//SI) These databases contain raw data, including enciphered collection, and, when exploitation 
is possible, decrypted plain text. Some of the data in the databases is NSA FISA-derived or FBI CT 
FISA-derived. While not every database contains FISA-derived material, it is reasonable to expect 
that analysts at the CCs will perform mission with agility, moving across targets and databases as 
mission demands, and that sometimes that will mean accessing data within a database that does 
contain FISA-derived data. Access to these databases is restricted to analysts who hold the 
RAGTIME ECI, have a specific 'need to know' about the data stored within the databases, and who 
are authorized by the data owner. For some years CES has been the recipient of improperly 
marked/classified data but all analysts have been and are aware that data marked with the SIGAD 
US984J and case notation XX.SQF* is FBI FISA data, and that all other data marked with SIGAD 
US-984* is NSA FISA data. CES believes that the appropriate remedy is to correct the 
classification of the data before it is fed into our systems. This is an ongoing issue which should not 
impede the approval of this SPF but the matter should be addressed. CES will ensure that all 
analysts accessing these databases know that data marked with the SIGAD US984J and case 
notation XX.SQF* is FBI FISA data, and that all other data marked with SIGAD US-984* is NSA 
FISA data, and that this data should be classified TOP SECRET//COMINT - ECI RAGTIME// 
NOFORN. Ideally all FISA and non-FISA material should be held separately, and FBI and NSA 
FISA should be partitioned by individual target. The Office of Oversight and Compliance will work 
with S3 dataflow and Special Source Operations to correct the markings/classification of data at the 
front end. 

(S//SI) CES at NSAW will work to ensure that all individuals working the cryptanalysis mission at 
the CCs have the appropriate clearances for access to sensitive data, including RAGTIME, and will 
dictate specific policy and procedural security measures. 

REQUIREMENTS: (TS//SI//NF) Following recent meetings and discussions among SID Oversight 
and Compliance (SV) and NSAW CES, the following are recommendations and requirements that 
CES and the Cryptologic Centers should agree to implement prior to accessing, handling, 
processing, retaining, and disseminating NSA FISA and CT FBI FISA-derived collection. 

SV requirements; NSA/CSS TX, NSA/CSS GA, and NSA/CSS HI should commit to: 

1) (S//SI) The creation of a permanent FISA coordinator position, to be staffed initially by a 
person experienced with FISA procedures, to ensure compliance with FISA minimization 
procedures; build a culture and climate of FISA awareness; and facilitate on-site ability to train, 
field questions, and handle time-sensitive FISA issues. 

(S//SI) NSA/CSS TX has identified a permanent FISA coordinator; however that 
person has no FISA experience. The CES Mission Manager at TX, who has FISA experience, must 
perform oversight of CES activities and must participate in the new coordinator’s FISA training. 
SID Oversight & Compliance will brief both individuals on their responsibilities. 



TOP SECRET//COMINT//NOFORN//20291123 




TOP $ ECItEiyy COMI NT//NOF OR N//2029 1 1 23 

S3 109-08006 

(TS//SI//NF) NSA/CSS GA and N3A/CSS III have permanent FISA coordinators who 
have been supporting the Counterterrorism analytic mission. CES must work with those persons to 
ensure oversight of CES activities. The FISA coordinators will ensure consistent FISA oversight 
across all Cryptologic Center activities, 

2) CS//SI) The creation of a core FISA workforce which, at all times, contains a stable body of 
personnel who ideally have at least one year's experience working FISA, A stable, non-transient 
workforce ensures a well-founded culture for FISA, as has been established at NSAW over many 
years* Such a culture minimizes the number of FISA^related violations by reinforcing the 
requirements, restrictions, and sensitivities of accessing and processing FISA. 

(S//SI) The CES Mission Managers at Texas, Georgia, and Hawaii have FISA 
experience and will have supervisory responsibilities over all CES employees at those sites, CES 
will ensure that all cryptanalysts at Texas, Georgia, and Hawaii will be trained on how to perforin 
the CES mission and on how to handle sensitive materials; all will be knowledgeable about USSID 
SP001 8 and Annex A that describes FISA handling. 

3) (S^/SI) Provide assurances and documentation that the on-site physical layout of 
terminals and the means to secure the FISA material is such that access is restricted to only 
cleared personnel with a need for access to the FISA data, 

(3//SI) Seating for individuals performing the cryptanalysis mission will be clustered 
together to ensure that they have visual and acoustical privacy for technical conversations and to 
ensure that their conversations and the data displayed on their computer screens is neither 
accessible nor viewable by those who do not have the appropriate clearances and a fi need-to-know B , 
In addition, those individuals will have one or more dedicated printers and combination safes for 
storage of any authorized FISA material, 

4) (S//SI) Provide assurances that FISA material will not be revealed or disseminated as pari 
of site briefings or demonstrations, or in any other format, unless it conforms to and is handled in 
accordance with FISA Court requirements and minimization procedures approved by the Attorney 
General, and NSA dissemination policies and procedures, Due to the sensitivity of the sources and 
methods used to obtain this collection* it cannot be shared with site visitors or other uncleared 
personnel without proper minimization and attribution to protect those sources and methods* 

OGC requirements: 

(S//SI) Except in exigent circumstances, ah personnel that will have access to FISA material should 
receive initial OGC USSID SPO01S and FBI FISA minimization briefings in person. The briefings 
gi ven by OGC are interactive in nature and the personal setting gives OGC a better opportunity to 
interact with all participants. When in person briefings are not possible* briefings will be done via 
VTC. 



RECOMMENDATION; 



(U) SIGINT DIR concur on access with oversight as described. 



SIGINT DIR’S DECISION: 





Nonconcur: 



Date: 



Other: 



Date: 
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CHIEF, 

SID OVERSIGHT Ji COMPLIANCE 

4 Ai>gu$t 2006 

TO: (U) SIGINT Director 

SUDJ: (5} Recom mended Requirements for Cryptanalysts je 
(’C s fll Texas, Georgia and Hawaii LA access NS A am! FBI 
MSA materiai. 

0 S//SI) This rot|uesi will set j precedent s& no prior request 
for iioeess io NSA FISA material outside NSAtt 1 ' has been 
approved. NS A FISA is SIGINT derived from NSA's own 
submissions Eo the US fTSA Court. An individual in SID 
Oversight amt Compliance (SV), in a personally sworn 
ilcclaratjon to the US FJSA Court, assures the Conn that al[ 
individuals, wherever located and in any job (linguist* 
crylpanalysl. reporter, collector, efc.), who access or use NS A 
MSA material arc trained arid will comply with «lt NSA 
oh fj gatings attached to 'his sensitive access, 

( t'S-'/SI) While 5 V support* the S3/C-KS build out to the 
Cryptologic Center* in principle, SV lias learned chat there ait 
e vist i tig deficiencies in class; licut ton and Itaitdliiig of NSA 
ITS A ami Hi I FISA material in CES’s databases tiual must be 
addressed and fixed before additional access at LheCCs L& 
approved. 

(TS//ST) It is vital that both NSA EISA sind EDI FISA material 
he properly Slid separately identified so (hat I) users of iliac 
material know ihal they are accessing NSA FISA or FBI ELSA, 
and 2) NSA can remain in compliance wjlh rJepanmtntof 
Justice mi tl all other obligations lor EISA handling cad 
mini mention. It is possible I hat there sire ahead y EISA 
violations resulting fiom the way dais juts been stored in these 
databases and ir is critical (hat these problems be ft-sed before 
*“ P ruW “ B are spraid re new IfKnlL^^ , s 

U+loJ JOlRliJ.! 

di 2 &zvjp 2J 
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(T'SiVSl) Fw example, the das abases FOURSCORE and ZAP 
conmiJi both NSA FISA and FBI EISA that does not cany the 
expropriate dassi ficatigp (all NSA anti FBI FISA material 
must cany the “TS//SFFC1 KGT//NOFORN//2029123-’ 
clarification. FBI EISA should also be marked with the; 
OGC-approvcd FBI FISA bamierj. Further, NSA EISA ar>d 
FBI EISA materials are mixed together within the databases, 
despite ihe differences in allowed retention between the (wo 
versions of FISA, and both are mixed with non-FlS A 
material. CES should also provide SV with an SOP clarifying 
how access (by both CHS and S2 target analysts! these 
target folders is maintained, including, wiiat cheeks are tn 
place tn verily user cleartmees to view NSA FISA and/or FBI 
FISA material. 

(TS//S1) If you support access in prindple. i would 
recommend dial no action tic taken to establish accounts at the 
CCa lor thaeCES databases unlit SV can ensure Liial ihc 
issues of etassi Heat ion, partitioning and access are resolved 
and any existing FISA access or retention violations are 
identified and cleared up. 

(TS/ttl) Further* SV rocon.unends ilwt ihisacccs* not he 
approved onlll S3/CES and the C'typtologic Cenlera involved 
coordinate with the ollices that sponsored the NSA FISA 
court nretcre and agree to the responsibilities ihnl each will 
have relative to satisfying the EISA nununiza'icin procedures 
(USSID SHOO I fj, Annex A). This in necessary to eiisurc that 
all individuals who (ouch NSA EISA material personally 
abide i>y N&A s FISA Its ndiing and mini niizst ton 
requirements, ensure tleit no one makes erroneous 
assumptions about wltal another office: is doing vis-a-vis 
meeting those requirements, and ensure that the NSA 
declarant can swear under oat It, that NSA abides by its 
obligations. 
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